{{!
  Copyright (c) HashiCorp, Inc.
  SPDX-License-Identifier: BUSL-1.1
~}}

<PageHeader as |p|>
  <p.top>
    <KeyValueHeader @path="vault.cluster.secrets.backend.show" @mode={{this.mode}} @root={{@root}} @showCurrent={{true}} />
  </p.top>
  <p.levelLeft>
    <h1 class="title is-3" data-test-secret-header="true">
      {{#if (eq @mode "create")}}
        Create Role
      {{else if (eq @mode "edit")}}
        Edit Role
      {{else}}
        {{@model.id}}
      {{/if}}
    </h1>
  </p.levelLeft>
</PageHeader>

{{#if (eq @mode "show")}}
  <Toolbar>
    <ToolbarActions>
      {{#if @model.canDelete}}
        <ConfirmAction
          @buttonClasses="toolbar-link"
          @onConfirmAction={{action "delete"}}
          @confirmTitle="Delete role?"
          @confirmMessage="This role will be permanently deleted. You will need to recreate it to use it again."
          @confirmButtonText="Delete"
          data-test-database-role-delete
        >
          Delete role
        </ConfirmAction>
        <div class="toolbar-separator"></div>
      {{/if}}
      {{#if (and @model.canRotateRoleCredentials (eq @model.type "static"))}}
        <Hds::Button
          @text="Rotate credentials"
          @color="secondary"
          class="toolbar-button"
          {{on "click" (fn this.rotateRoleCred @model.id)}}
        />
      {{/if}}
      {{#if
        (or
          (and (eq @model.type "static") @model.canGetCredentials)
          (and (eq @model.type "dynamic") @model.canGenerateCredentials)
        )
      }}
        <Hds::Button
          @text={{if (eq @model.type "static") "Get credentials" "Generate credentials"}}
          @color="secondary"
          class="toolbar-button"
          {{on "click" (fn this.generateCreds @model.id @model.type)}}
          data-test-database-role-creds={{@model.type}}
        />
      {{/if}}
      {{#if @model.canEditRole}}
        <ToolbarSecretLink
          @secret={{concat "role/" @model.id}}
          @mode="edit"
          @replace={{true}}
          @queryParams={{hash itemType="role"}}
          data-test-edit-link={{true}}
        >
          Edit role
        </ToolbarSecretLink>
      {{/if}}
    </ToolbarActions>
  </Toolbar>
  {{#each @model.showFields as |attr|}}
    {{#let attr.options.defaultShown as |defaultDisplay|}}
      {{#if (eq attr.type "object")}}
        <InfoTableRow
          @alwaysRender={{true}}
          @defaultShown={{defaultDisplay}}
          @label={{capitalize (or attr.options.label (humanize (dasherize attr.name)))}}
          @value={{stringify (get @model attr.name)}}
        />
      {{else if (eq attr.options.editType "ttl")}}
        <InfoTableRow
          @alwaysRender={{true}}
          @defaultShown={{defaultDisplay}}
          @label={{capitalize (or attr.options.label (humanize (dasherize attr.name)))}}
          @value={{format-duration (get @model attr.name)}}
          @isLink={{eq attr.name "database"}}
        />
      {{else}}
        <InfoTableRow
          @alwaysRender={{true}}
          @defaultShown={{defaultDisplay}}
          @label={{capitalize (or attr.options.label (humanize (dasherize attr.name)))}}
          @value={{get @model attr.name}}
          @isLink={{eq attr.name "database"}}
        />
      {{/if}}
    {{/let}}
  {{/each}}
{{else}}
  {{! Edit or Create }}
  <div class="box is-sideless is-fullwidth is-marginless">
    <form {{on "submit" this.handleCreateEditRole}}>
      {{#each @model.fieldAttrs as |attr|}}
        {{#if (eq @mode "edit")}}
          <ReadonlyFormField @attr={{attr}} @value={{get @model attr.name}} />
        {{else if (not-eq attr.options.readOnly true)}}
          <FormField data-test-field={{true}} @attr={{attr}} @model={{@model}} />
          {{! TODO: If database && !updateDB show warning }}
          {{#if (get this.warningMessages attr.name)}}
            <Hds::Alert @type="inline" @color="warning" class="has-top-margin-negative-s has-bottom-margin-s" as |A|>
              <A.Title>Warning</A.Title>
              <A.Description>{{get this.warningMessages attr.name}}</A.Description>
            </Hds::Alert>
          {{/if}}
        {{/if}}
      {{/each}}

      <DatabaseRoleSettingForm
        @attrs={{@model.roleSettingAttrs}}
        @roleType={{@model.type}}
        @model={{@model}}
        @mode={{@mode}}
        @dbType={{await this.databaseType}}
      />
      <div class="field is-grouped is-grouped-split is-fullwidth box is-bottomless">
        <div class="field is-grouped">
          <Hds::ButtonSet>
            <Hds::Button
              @text={{if (eq @mode "create") "Create role" "Save"}}
              @icon={{if this.loading "loading"}}
              type="submit"
              disabled={{this.loading}}
              data-test-secret-save
            />
            <Hds::Button
              @text="Cancel"
              @color="secondary"
              @route="vault.cluster.secrets.backend.list-root"
              @model={{@model.backend}}
              @query={{hash tab="role"}}
              data-test-database-role-cancel
            />
          </Hds::ButtonSet>
          {{#if (not (is-empty-value this.warningMessages))}}
            <Hds::Alert @type="compact" @color="warning" class="has-left-margin-s" as |A|>
              <A.Title>Warning</A.Title>
              <A.Description>
                You don't have permissions required to
                {{if (eq @mode "create") "create" "update"}}
                this role. See form for details.
              </A.Description>
            </Hds::Alert>
          {{/if}}
        </div>
      </div>
    </form>
  </div>
{{/if}}